CVE-2017-6334
NETGEAR DGN2200 Devices OS Command Injection Vulnerability
CVSS
—
No CVSS
EPSS
72.2%
p99
KEV
YES
Mar 25, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
72.2%EPSS · 30 days72.2%
2026-06-302026-07-16
Product
NETGEAR / DGN2200 Devices
Vulnerability
NETGEAR DGN2200 Devices OS Command Injection Vulnerability
Added to KEV
Mar 25, 2022
Remediate by
Apr 15, 2022
Known ransomware use
No
Summary description
dnslookup.cgi on NETGEAR DGN2200 devices with firmware through 10.0.0.50 allows remote authenticated users to execute arbitrary OS commands
Required action
The impacted product is end-of-life and should be disconnected if still in use.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2017-6334
No related CVEs by CWE or product.